VYPR
Unrated severityNVD Advisory· Published Nov 5, 2021· Updated Apr 23, 2025

Meross MSS550X Missing Encryption of Sensitive Data

CVE-2021-3774

Description

Meross Smart Wi-Fi 2 Way Wall Switch (MSS550X), on its 3.1.3 version and before, creates an open Wi-Fi Access Point without the required security measures in its initial setup. This could allow a remote attacker to obtain the Wi-Fi SSID as well as the password configured by the user from Meross app via Http/JSON plain request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Meross/MSS550Xllm-create
    Range: <=3.1.3
  • Meross/Meross Smart Wi-Fi 2 Way Wall Switchv5
    Range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.